Comments (9)
Thanks for pointing out that! I have added this now and all the changes are going to be added on the new stable release hopefully.
from cryptoanalysis.
Unfortunately, CryptoAnalysis doesn't take --csvReportFile
or --reportDir
tag as arguments. Please follow the provided guideline for running CryptoAnalysis. Instead of the above command, you may try this one:
~ $ java -cp CryptoAnalysis-2.7.1-SNAPSHOT-jar-with-dependencies.jar crypto.HeadlessCryptoScanner --rulesDir/home/app/src/ --applicationCp /home/app/Examples.jar --reportPath C:\Users\reports --reportFormat CSV
You may use other additional arguments as follows:
--cg <selection_of_call_graph_for_analysis> (possible values are CHA, SPARK, SPARKLIB)
--sootPath <absolute_path_of_whole_project>
--identifier <identifier_for_labelling_output_files>
--preanalysis (enables pre-analysis)
--visualization (enables the visualization, but also requires --reportPath option to be set)
--providerDetection (enables provider detection analysis)
from cryptoanalysis.
I tried this before, but the --reportPath
option doesn't work as expected.
~ $ java -cp CryptoAnalysis-2.7.1-SNAPSHOT-jar-with-dependencies.jar crypto.HeadlessCryptoScanner --rulesDir /home/app/src/ --applicationCp /home/app/data/test.jar --
reportPath /home/app/data/ --reportFormat CSV
Exception in thread "main" org.apache.commons.cli.UnrecognizedOptionException: Unrecognized option: --reportPath
at org.apache.commons.cli.DefaultParser.handleUnknownToken(DefaultParser.java:360)
at org.apache.commons.cli.DefaultParser.handleLongOptionWithoutEqual(DefaultParser.java:407)
at org.apache.commons.cli.DefaultParser.handleLongOption(DefaultParser.java:384)
at org.apache.commons.cli.DefaultParser.handleToken(DefaultParser.java:239)
at org.apache.commons.cli.DefaultParser.parse(DefaultParser.java:120)
at org.apache.commons.cli.DefaultParser.parse(DefaultParser.java:76)
at org.apache.commons.cli.DefaultParser.parse(DefaultParser.java:60)
at crypto.HeadlessCryptoScanner.createFromOptions(HeadlessCryptoScanner.java:77)
at crypto.HeadlessCryptoScanner.main(HeadlessCryptoScanner.java:71)
from cryptoanalysis.
CryptoAnalysis-2.7.1-SNAPSHOT doesn't recognize the above arguments. There have been significant changes with the project and it's arguments. Please try with the latest version of the CryptoAnalysis.
from cryptoanalysis.
@Projucti do you referr to CryptoAnalysis 2.7.2 which is stable or shall @luismoeller use the beta builds?
Also could you please look into fixing this for a 2.7.3 release? I think this sounds rather important to have reporting fixed in a stable release.
from cryptoanalysis.
I completely agree with you as CryptoAnalysis-2.7.2 stable version has same issue. For now, I am suggesting @luismoeller to use the latest beta builds CryptoAnalysis-2.8.0-SNAPSHOT. I am looking into fixing this for next stable release.
from cryptoanalysis.
currently, I am facing the same issue as @luismoeller. I tried to build the latest version from the develop branch as recommended from @Projucti with some errors. Git also indicates that the current version is failing in building. Is there already a possible workaround or even a solution for this?
from cryptoanalysis.
@Maximilianhummel unfortunately, CSV reporting is working correctly with the develop branch from my side. Can you please provide more details/ files/steps which are causing the error so that I can recreate/reproduce the issue from my side?
from cryptoanalysis.
Thanks for the quick reply! the build ist now working. the groupId was missing for apache maven plugins in the pom file.
<plugin> <groupId>org.apache.maven.plugins</groupId> <artifactId>maven-compiler-plugin</artifactId> <version>3.8.1</version> <configuration> <source>1.8</source> <target>1.8</target> </configuration> </plugin>
from cryptoanalysis.
Related Issues (20)
- Inheritance may cause false positives
- Constraints not always considered correctly
- Input args seem to fail for relative paths HOT 1
- CogniCrypt indicates false positive
- Redundant loading of rules in HeadlessCryptoScanner
- False Positive TypestateError in Cipher Class HOT 4
- CryptoAnalysis does not check CONSTRAINTS if no ORDER is specified. HOT 6
- False Positive RequiredPredicateError when woking with JCA PBE HOT 2
- No delete button for custom rules HOT 3
- CSV logs give less information than TXT Logs HOT 3
- Re-Implement the necessary parts in CryptoAnalysis to make use of the Picocli library
- Feature Request: JSON Result Format HOT 2
- Different report formats report different information HOT 1
- SecureRandom missing an ensured predicate although it is correctly generated
- SecretKey has not the predicate `generatedKey` negated after `destroy()`
- Missing RequiredPredicateError for insecure PBEKeySpec used with SecretKeyFactory HOT 1
- Calling a method multiple times cause missing RequiredPredicateErrors
- CogniCrypt for android soot error HOT 1
- Create an output for preceding and subsequent errors
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from cryptoanalysis.